CVE-2024-13417 MEDIUM

CVE-2024-13417

Vendor 2N
Product 2N OS
Weakness CWE-248
Published February 6, 2025
Last update January 9, 2026

CVSS base score

4.6/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the device is restarted, it gets back to fully working state. 2N has released an updated version 2.46 of 2N OS, where this vulnerability is mitigated. It is recommended that all customers update their devices to the latest 2N OS.

Key dates

02Disclosure timeline

February 6, 2025 CVE published
January 9, 2026 Record updated